v15 Security

Discussion in '3CX Phone System - General' started by cobaltit, Jul 12, 2016.

Thread Status:
Not open for further replies.
  1. cobaltit

    cobaltit Active Member

    Joined:
    Mar 22, 2012
    Messages:
    733
    Likes Received:
    112
    SRTP is being advertised but that was already there and is practically useless without TLS which is still a PITA to setup. It would be nice to see the Let's Encrypt integration also handle the SIP TLS/Secure SIP setup. A PBX that is hacked can run up a few thousand dollars in usage before it is noticed but someone could listen/record VoIP traffic for months and no one would know.

    And while you are making that Let's Encrypt magic happen for Secure SIP/TLS please change the wording from 'API Key' to 'Private Key'.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. roadwings

    Joined:
    May 16, 2015
    Messages:
    49
    Likes Received:
    14
    Agreed. What exactly is that certificate for again? Just the administrator web console? Any way to get every service secured with one cert?
     
Thread Status:
Not open for further replies.